Home / Linux / Miscellaneous

AWS SSM SSH Proxy Command

AWS SSM SSH Proxy Command

aws-ssm-ec2-proxy-command

Prerequisits

Install SSH Proxy Command

  • Move proxy command script aws-ssm-ec2-proxy-command.sh to ~/.ssh/aws-ssm-ec2-proxy-command.sh
  • Ensure it is executable (chmod +x ~/.ssh/aws-ssm-ec2-proxy-command.sh)
Setup SSH Config
  • Add ssh config entry for aws ec2 instances to your ~/.ssh/config. Adjust key file path if needed. 
    host i-* mi-*
  IdentityFile ~/.ssh/id_rsa
  ProxyCommand ~/.ssh/aws-ssm-ec2-proxy-command.sh %h %r %p ~/.ssh/id_rsa.pub
  StrictHostKeyChecking no

Open SSH Connection

  • ssh <INSTACEC_USER>@<INSTANCE_ID>
  • Ensure AWS CLI environemnt variables are set properly
    • e.g. AWS_PROFILE='default' ssh [email protected]
    • If default region does not match instance region you need to provide it like this
    • AWS_PROFILE='default' ssh <INSTACEC_USER>@<INSTANCE_ID>--<INSTANCE_REGION>

TODO

Add variant to send ssh key by ec2-instance-connect:SendSSHPublicKey

0 Open More issues
Closed

A 'not a tty' file generated from the proxy command

For some reasons, a new empty not a tty file is created under my current directory after I've run ssh i-XXXXXXX via this proxy script.

I'm not sure what is causing this, and it's not from the echo ... >/dev/tty line 🤔

bug 
opened Jun 6, 2020 by zmingxie 10
Closed

ssh handshake expose on mac

Not really sure whether the words are correct. But I found that if there's no sh -c wrap the session create command, it will expose the handshake process and cause error like: protocol mismatch

I have to use

sh -c "aws ssm start-session \
  --target "${ec2_instance_id}" \
  --document-name 'AWS-StartSSHSession' \
  --parameters "portNumber=${ssh_port}""

instead of

aws ssm start-session \
  --target "${ec2_instance_id}" \
  --document-name 'AWS-StartSSHSession' \
  --parameters "portNumber=${ssh_port}"
opened Sep 16, 2020 by lisbethw1130 4
Closed

Gcchaves

Hey,

Got some problems with the script, "~/${ssh_user}" is creating /home/user/user, also the SSM agent undestands "~/" as "/var/snap/amazon-ssm-agent/".

opened Aug 7, 2020 by marinheiromc 3
Closed

Wrong ssh directory path

bug 
opened Aug 7, 2020 by marinheiromc 3
Closed

Update aws-ssm-ec2-proxy-command.sh

I could not make the original script work with the simple command expansion $_ and worse it failed silently (and as I am admin I happened to have the root private key for all the instances on my ssh-add keychain so we could not figure out why devs could not access it but I could).

I changed it to this to a less elegant but working solution for ubuntu/centos/fedora etc but obviously there might need to be an alternative solution for distros that do not use /home/ for user directories.

opened Jul 21, 2021 by scholar6admin 3
Closed

Added a check for ensuring the .ssh directory exists.

When connecting to SSM the first time after instance creation, the connections fail because the .ssh directory does not yet exist for the ssm-user.

opened Jul 23, 2020 by opsroller 2

v1.0.0(Oct 18, 2020)

Information
Category: Linux / Miscellaneous
Watchers: 2
Star: 3
Fork: 0
Last update: Jun 10, 2020

Contents
    Resource links
    https://github.com/qoomon/aws-ssm-ec2-proxy-command
    Share this repo
    Latest Repos
    nikp123 Run an Android desktop environment off of a device using ONLY scrcpy
    hackclub proxy.hackclub.com - An nginx redirector and proxier for all of our needs!
    mrpippy A hack allowing the use of Xcode 9's toolchain on macOS Catalina, Big Sur, and Monterey.
    chentau A better user experience for interacting with and manipulating Vim marks
    Ls4ss Apache HTTP Server 2.4.49, 2.4.50 - Path Traversal & RCE
    wmitsuda Ethereum event log signatures database
    im-hanzou Apache (Linux) CVE-2021-41773/2021-42013 Mass Vulnerability Checker
    MrLutik Tools for validators
    hamadmarri This is a very basic/lightweight yet a very performant CPU scheduler.
    unkn0w Kolekcja skryptów do szybkiego stawiania usług na serwerach Mikrusa
    YouGina ReconMaster contest - scripts used and a write-up
    ospfranco Small script I use to bump my react-native releases (`yarn bump`)
    vmware-tanzu Tanzu Community Edition is a fully-featured, easy to manage, Kubernetes platform for learners and users.
    nanozuki A minimal, configurable, neovim style tabline. Use your nvim tabs as workspace multiplexer.
    ionescu007 Unofficial Common Log File System (CLFS) Documentation

    Related Repos


    Boilerplates
    33
    Minimal Sveltekit + Electron starter template.
    FractalHQ Minimal Sveltekit + Electron starter template.
     
    Electron
    3.4k
    vue-cli-plugin-electron-builder Electron Builder Electron Webpackvue-cli-plugin-electron-b...
    nklayman Vue CLI Plugin Electron Builder Easily Build Your Vue.js App For Desktop With Electron Build status: Quick Start: Open a terminal in the directory of
     
    Integrations
    21
    loopback-vue-starter - LoopBack and Vue starter template with easy plugin management throu...
    ivandov LoopBack Vue Starter The LoopBack Vue Starter template has a very minimal set of features pre-enabled. The starter template uses LoopBack v3.x for API
     
    Boilerplates
    29
    A template project that combines SvelteKit, TypeScript and TailwindCSS (JIT mode)
    Dan1ve A template project that combines SvelteKit, TypeScript and TailwindCSS (JIT mode)
     
    Popular
    Miscellaneous
    5.9k
    :electron: 🚀 The easiest way to get started with Electron
    electron Electron Fiddle Electron Fiddle lets you create and play with small Electron experiments. It greets you with a quick-start template after opening – change a few things, choose the version of Electron you want to run it with, a
     
    Examples
    491
    ASP.NET Core Vue Starter CLI 3.0 @SoftwareAteliersASP.NET Core Vue Starter CLI 3.0 A Vue s...
    SoftwareAteliers ASP.NET Core Vue Starter The repository contains an ASP.​NET Core + Vue.js starter template. The template runs on ASP.NET Core 3.1 and is created by V
     
    Miscellaneous
    39
    Open Source Electron React Redux Starter Kit
    simpletut Open Source Electron React Redux Starter Kit What is Electron The Electron Framework enables us to build cross platform desktop applications with the same technologies used for web development such as HTML, CSS,
     
    Learning Tutorial
    22
    Unofficial documentation for SvelteKit
    GrygrFlzr Unofficial documentation for SvelteKit
     
    Security
    52
    Authentication library for use with SvelteKit featuring built-in OAuth providers and zero ...
    Dan6erbond Authentication library for use with SvelteKit featuring built-in OAuth providers and zero restriction customization!
     
    Flutter
    91
    A minimal electron application with flutter & dart
    hayderux electron-quick-start-flutter A minimal Electron application with flutter &amp; dart To Use # Clone this repository git clone https://github.com/hayderux/electron-quick-start-flutter # Go into the repository cd ele
     
    Examples
    1.2k
    aspnetcore-Vue-starter A VueJS 2 starter template as part of an asp.net MVC dotnetcore pro...
    TrilonIO ASP.NET Core & Vue.js Starter Starter Template for ASP.NET Core and Vue.JS (Vue) - with Webpack (with HMR), Web API, Vuex state manangement and other
     
    Electron
    284
    vue-electron-template - An Electron & Vue.js boilerplate with Hot-reloading enabled and co...
    mubaidr Vue-Electron-Template Template for building desktop applications using Electronjs and Vue.js Overview This template takes advantage of webpack-4 with
     
    Miscellaneous
    884
    The best way to build Electron apps with security in mind.
    reZach secure-electron-template A current electron app template with the most popular frameworks, designed and built with security in mind. (If you are curious about what makes an electron app secure, please check out this page) Bann
     
    HTTP
    1k
    Useful utilities for Electron apps and modules
    sindresorhus electron-util Useful utilities for developing Electron apps and modules Just an opinionated collection of things I often need when using Electron. Don't use this yet. Install $ npm install electron-util
     
    Miscellaneous
    57
    Set of helper modules to build Electron applications
    yoshuawuyts electron-collection Set of helper modules to build Electron applications. API debug([opts]) Adds useful debug features to your Electron app. See: electron-debug. menu = defaultMenu(app, she
     
    Vue CLI 3 Plugins
    3.4k
    vue-cli-plugin-electron-builder - Vue CLI 3 Plugin for Electron with no required configura...
    nklayman Vue CLI Plugin Electron Builder Easily Build Your Vue.js App For Desktop With Electron Build status: Quick Start: Open a terminal in the directory of
     
    Electron
    14.4k
    Electron Vue - An Electron & Vue.js quick start boilerplate with vue-cli scaffolding, comm...
    SimulatedGREG The boilerplate for making electron applications built with vue (pretty much what it sounds like). Overview The aim of this project is to remove the n
     
    Web Frameworks
    93
    Flask-Starter is a boilerplate starter template designed to help you quickstart your Flask...
    ksh7 Flask-Starter is a boilerplate starter template designed to help you quickstart your Flask web application development. It has all the ready-to-use bare minimum essentials.
     
    Vue.js
    32
    👻 A fast Simple Vite 2, Vue 3 and Electron 13.x template.
    trantoan960 👻 A fast Simple Vite 2, popular front-end frameworks and Electron 13.x template. This template should help get you started developing with Vite 2, popular front-end frameworks and Typescript in Electron.
     
    MVVM/MVP
    287
    Android Kotlin Starter is a starter project which implements MVVM Pattern.
    general-mobile Android Kotlin MVVM Starter Android Kotlin Starter is a starter project which implements MVVM Pattern. Libraries It includes libraries RxJava2 and RxAndroid and RxKotlin Retrofit / OkHttp Gson Dagger 2 T